Cyber Threats 2020: A Year in Retrospect
Contents
Cyber Threats 2020:
A Year in Retrospect
Contents
Introduction
1
A cyber pandemic
2
Intelligence gathering*
6
Asia Pacific
7
Europe
14
Middle East
17
Information operations
20
Blurring the lines
22
Cyber crime
26
Rise of the defenders
40
Tools, Tactics and Procedures
44
MITRE ATT&CK techniques
51
Sectors
56
Conclusion
62
PwC Cyber Security
63
*
This section looks at intelligence gathering and collection activity conducted by threat actors based in different geographic regions.
A greater reliance on remote working
brought in to focus the new and existing
threats to related technologies and
infrastructure.
Introduction
2020 saw a distinct shift in the cyber threat
landscape, with ransomware becoming the most
significant cyber security threat faced by
organisations, irrespective of industry sector or
location. The COVID-19 pandemic also permeated
through the cyber world as threat actors exploited
the resulting fear and uncertainty. A greater reliance
on remote working brought in to focus the new and
existing threats to related technologies and
infrastructure.
Major shifts in the tactics used by the threat actors
behind multiple ransomware families saw mass
data exfiltration performed prior to encrypting a
victim’s systems. As a result, leak sites came into
prominence, bringing the compromise directly into
the public …
A Year in Retrospect
Contents
Introduction
1
A cyber pandemic
2
Intelligence gathering*
6
Asia Pacific
7
Europe
14
Middle East
17
Information operations
20
Blurring the lines
22
Cyber crime
26
Rise of the defenders
40
Tools, Tactics and Procedures
44
MITRE ATT&CK techniques
51
Sectors
56
Conclusion
62
PwC Cyber Security
63
*
This section looks at intelligence gathering and collection activity conducted by threat actors based in different geographic regions.
A greater reliance on remote working
brought in to focus the new and existing
threats to related technologies and
infrastructure.
Introduction
2020 saw a distinct shift in the cyber threat
landscape, with ransomware becoming the most
significant cyber security threat faced by
organisations, irrespective of industry sector or
location. The COVID-19 pandemic also permeated
through the cyber world as threat actors exploited
the resulting fear and uncertainty. A greater reliance
on remote working brought in to focus the new and
existing threats to related technologies and
infrastructure.
Major shifts in the tactics used by the threat actors
behind multiple ransomware families saw mass
data exfiltration performed prior to encrypting a
victim’s systems. As a result, leak sites came into
prominence, bringing the compromise directly into
the public …